DOT to expand IT security services

The Transportation Department has established the CyberSecurity Management Center to perform information security services for its 13 operating agencies and expects to extend those services to federal agencies outside of DOT by the end of the year, said Christopher Garcia, program director of the center in the Federal Aviation Administration.

Seven agencies of varying sizes are considering using DOT’s services, he said at an industry event sponsored by the American Council for Technology and Industry Advisory Council on May 14. He did not want to name the agencies to avoid potential vulnerability problems.

The center grew out of the FAA’s Cyber Security Incident Response Center. The FAA agreed last October to assume all of Transportation’s information technology security after it had provided security for DOT agencies in after-work hours and on weekends for four years, said Michael Brown, director of the FAA’s Office Information Systems Security. The FAA gradually took on more of the department’s security activities. Northrop Grumman joined as integrator as the agency incorporated more commercial security products.

The center detects and responds to information security incidents, conducts analyses of sensor data and trends and provides corrective action capability. It publishes alerts, weekly newsletter, white papers and research, he said.

“We have a verifiable, auditable and repeatable process,” Brown said, having migrated Transportation’s 13 agencies to the CyberSecurity Management Center.

Transportation plans to compete to be a shared service provider under the Information Systems Security Line of Business when the Office of Management and Budget releases a request expected later this year, Brown said

“We are using the same model for how we became a shared service provider under the Financial Management Line of Business,” Garcia said. The department is one of four public shared services provider for financial management.

Early in its life, the center performed a lot of log analysis, but found it couldn’t respond in a timely manner with deeper analysis as the volume of data grew, Brown said. So the center uses a security information management system from ArcSight to reduce the amount of data that analysts have to sift through. Eventually, he will enhance the system with a collaboration module so others, such as engineers, can to look at incidents and explain them.

About the Author

Mary Mosquera is a reporter for Federal Computer Week.

Featured

  • Contracting
    8 prototypes of the border walls as tweeted by CBP San Diego

    DHS contractors face protests – on the streets

    Tech companies are facing protests internally from workers and externally from activists about doing for government amid controversial policies like "zero tolerance" for illegal immigration.

  • Workforce
    By Mark Van Scyoc Royalty-free stock photo ID: 285175268

    At OPM, Weichert pushes direct hire, pay agent changes

    Margaret Weichert, now acting director of the Office of Personnel Management, is clearing agencies to make direct hires in IT, cyber and other tech fields and is changing pay for specialized occupations.

  • Cloud
    Shutterstock ID ID: 222190471 By wk1003mike

    IBM protests JEDI cloud deal

    As the deadline to submit bids on the Pentagon's $10 billion, 10-year warfighter cloud deal draws near, IBM announced a legal protest.

Stay Connected

FCW Update

Sign up for our newsletter.

I agree to this site's Privacy Policy.